Returning Candidate?

IT Compliance Analyst

IT Compliance Analyst

US-CA-San Francisco
Job ID 

More information about this job


The IT Compliance Analyst is responsible for compliance with SOX, PCI-DSS, SDLC and internal IT policies. This position
will execute the planning and performance of assessments across various compliance areas, while working directly with
the technical and business leadership to select, deploy and validate security controls to ensure security and compliance
requirements are maintained.


  • Work with both internal and external auditors to ensure compliance with all industry mandated regulations including, but not limited to, SOX and PCI
  • Oversee SDLC compliance within IT departments
  • Monitor activities of assigned IT area(s) to ensure compliance with internal policies and procedures including monthly, quarterly and annual account and activity reviews
  • Develop project requirements, objectives, plans, schedules and tasks for IT related to compliance activities
  • Coordinate audit-related tasks to ensure the readiness of managers and their teams for audit testing and facilitating the timely resolution of any audit findings
  • Ensure reports and findings are delivered in a timely and appropriate manner to management
  • Facilitate compliance with the internal control standards via regular monitoring of related activities
  • Execute multiple security control validation programs simultaneously with specific deadlines
  • Manage the progress of remediation steps on identified control deficiencies
  • Execute to successful completion of work products
  • Support additional internal and external compliance activity


  • Strong project management and communication skills (written and oral) with internal organizations and external/internal auditors.
  • Skilled in verbal and written communications with the ability to express medium complexity technical concepts in business terms.
  • Organized and detail-oriented, able to work well under deadlines in a changing environment and complete multiple projects effectively and concurrently.
  • Excellent teamwork and customer service skills
  • 3-5 years of related experience in IT Audit or Compliance.
  • Possession of standard certifications in Information Security or Compliance preferred (CISA, CISSP, CISM, CRISC, PCIP, PCI ISA, or PCI QSA).
  • Experience with Information Security, Compliance & IT Management Standards
  • Demonstrated ability to apply IT-related knowledge and experience in solving compliance issues
  • Proficiency with Microsoft Office software, Excel, Word, PowerPoint, Visio and SharePoint

Experience / Education:

  • Bachelor’s degree in Business, Finance, a related field or equivalent education required.
  • 3+ years of experience in SOX compliance monitoring and reporting and basic understanding of auditing principles such as understanding a process workflow, identifying control points, entry and exit criteria of control points, and proper control point certification
  • 3+ years of experience in PCI Compliance preferably in an ISA or QSA role

Connect With Us!

Not ready to apply quite yet? Connect with us to get job updates based on your interests.